QUESTION 91Drag and Drop QuestionYou have an Exchange Server 2013 organization that contains a server named Server1. A user named User1 has an administrative assistant named Assistant1. A user named User2 has an administrative assistant named Assistant2.You need to configure access to Outlook to meet the following requirements:– Assistant1 must be able to send email messages as a User1. – Assistant2 must be able to send email messages on behalf of User2.Which cmdlets should you use? (To answer, drag the appropriate cmdlets to the correct requirements. Each cmdlet may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.)Answer: Explanation:Add-MailboxFolderPermissionUse the Add-MailboxFolderPermission cmdlet to manage folder-level permissions for all folders within a user’s mailbox.For information about the parameter sets in the Syntax section below, see Syntax. This example assigns permissions for Ed to access Ayla’s Marketing mailbox folder and applies the Owner role to his access of that folder.Add-MailboxFolderPermission -Identity [email protected]:\Marketing -User [email protected] ?AccessRights OwnerAdd-MailboxPermissionUse the Add-MailboxPermission cmdlet to add permissions to a mailbox. This example grants Kevin Kelly full access to Terry Adams’s mailbox.Note:The Identity parameter requires the full name of the user to be enclosed in quotation marks (“). Add-MailboxPermission -Identity “Terry Adams” -User KevinKelly -AccessRights FullAccess ?InheritanceTypeAllAdd-ADPermissionUse the Add-ADPermission cmdlet to add permissions to an Active Directory object. This example grants Send As permissions for Aaron Painter to Terry Adams’s mailbox. Add-ADPermission -Identity “Terry Adams” -User AaronPainter -AccessRights ExtendedRight -ExtendedRights“Send As” Send As rights is applied to Active directory object.Set-MailboxUse the Set-Mailbox cmdlet to modify the settings of an existing mailbox. You can use this cmdlet for one mailbox at a time. To perform bulk management, you can pipeline the output of various Get-cmdlets (for example, the Get-Mailbox or Get-User cmdlets) and configure several mailboxes in a single-line command.You can also use the Set-Mailbox cmdlet in scripts.For information about the parameter sets in the Syntax section below, see Syntax. This example delivers John Woods’s email messages to John’s mailbox and also forwards them to Manuel Oliveira’s ([email protected]) mailbox.Set-Mailbox -Identity John -DeliverToMailboxAndForward $true -ForwardingSMTPAddress [email protected]Send on BehalfThe Send on Behalf permission allows a user to send email on behalf of the shared mailbox. For example, ifJohn logs into the shared mailbox Reception Building 32 and sends an email, it will appear to recipients as being sent by “John on behalf of Reception Building 32”. To grant Send on Behalf permissions, you must use the Exchange Management Shell. Use the Set-Mailbox cmdlet with the GrantSendonBehalf parameter.

QUESTION 92Hotspot QuestionYou have an Exchange Server 2013 organization that contains 10 mailbox servers. You have a custom workload management policy named App1Policy. App1Policy is applied to three Mailbox servers. You deploy a new Mailbox server named EX11. You need to ensure that App1Policy is applied to EX11. Which command should you run? (To answer, configure the appropriate options in the answer area.)Answer: Explanation:An Exchange workload is an Exchange Server feature, protocol, or service that’s been explicitly defined for the purposes of Exchange system resource management. Each Exchange workload consumes system resources such as CPU, mailbox database operations, or Active Directory requests to run user requests or background work. Examples of Exchange workloads include Outlook Web App, Exchange ActiveSync, mailbox migration, and mailbox assistants. There are two ways to manage Exchange workloads: by monitoring the health of system resources or by controlling how resources are consumed by individual users (sometimes called user throttling in Exchange 2010).Managing workloads based on the health of system resources is new in Microsoft Exchange Server 2013. Controlling how resources are consumed by individual users was possible in Exchange Server 2010, and this capability has been expanded for Exchange Server 2013. You can customize the workload management settings if you want to change the default behavior of the feature for the needs of your environment.SECTION1Use the Set-ExchangeServer cmdlet to set Exchange attributes in Active Directory for a specified server.(EX11)Not a throttling policyScenario details a workload management policyUse the Set-ResourcePolicy cmdlet to set the properties of a custom resource policy.SECTION2The Identity parameter specifies the GUID, distinguished name (DN), or name of the server.Need EX11 as it is the name of the serverSECTION3The WorkloadManagementPolicy parameter specifies the name of a workload management policy to apply in Active Directory. (App1Policy)Not a throttling policy

QUESTION 93Hotspot QuestionYou have an Exchange Server 2013 organization that contains two distribution groups named Groupl and Group2.You need to prevent the members of Groupl and Group2 from communicating with each other by using email, unless the email messages contain the string Press Release in the subject. Users whose email messages are rejected must receive a non-delivery report (NDR) that contains a status code of 5.7.3.Which command should you run? (To answer, configure the appropriate options in the answer area.)Answer:

QUESTION 94You have an Exchange Server 2013 organization named for A.Datum Inc. A user named User1 is a member of the Domain Admins group. User1 fails to synchronize a new Windows Phone device by using Exchange ActiveSync and receives an HTTP 500 error message. User1 successfully logs on to Outlook Web App and Outlook Anywhere. You need to ensure that User1 can synchronize the new Windows Phone device by using Exchange ActiveSync. Which two tasks should you perform? (Each correct answer presents a complete solution. Choose two.)

Answer: BEExplanation:HTTP 500 ERROR MESSAGEThe Web server (running the Web Site) encountered an unexpected condition that prevented it from fulfilling the request by the client (e.g. your Web browser or our CheckUpDown robot) for access to the requested URL.BSimply check include inheritable permissions from this object’s parent.INHERITABLE PERMISSIONSNOT ANeed to enable permission inheritance on the User1 user account not disable itNOT CThis solution will fix a different error. (Error 80072F0D) error This error can occur when the root certificate authority that generated the SSL certificate being used by the Exchange server is not trusted by the Windows Phone device.This will commonly occur with Exchange servers that are still configured to use a self-signed certificate, or that have a certificate issued from a private CA.NOT DNo need to create a new policy but need to modify the existing policyEIt appears that Exchange ActiveSync for User 1’s mailbox may not be enabled. Use the EAC to enable or disable Exchange ActiveSync In the EAC, navigate to Recipients > Mailboxes.In the list of user mailboxes, click the mailbox that you want to enable or disable Exchange ActiveSync for, and then click Edit.On the mailbox properties page, click Mailbox Features.Under Mobile Devices, do one of the following:To disable Exchange ActiveSync click Disable Exchange ActiveSync. A warning appears asking if you’re sure you want to disable Exchange ActiveSync. Click Yes.To enable Exchange ActiveSync, click Enable Exchange ActiveSync.Click Save to save your change.Exchange ActiveSync mailbox policies control how users use and synchronize their mobile devices in your organization.When you change an Exchange ActiveSync device policy, it affects all users whose mailbox is associated with that policy. The policy you set as the default automatically affects all users in the organization except those you have explicitly assigned different device policies to.Not all mobile devices support all the Exchange ActiveSync policy settings. If a policy setting isn’t supported on a particular device, the device may not apply the setting.You can control whether devices that don’t support specific policies are allowed to connect in the General settings for the policy.

QUESTION 95Your company has a main office and a branch office. You have an Exchange Server 2013 organization. The company recently built a new meeting room in the branch office. You need to ensure that the meeting room is available by using the Room Finder feature in Microsoft Outlook.Which cmdlet should you run?

Answer: BExplanation:New-Mailbox Create a new Room Mailbox to schedule meetings in conference rooms, auditoriums, labs or other facilitiesNew-Mailbox -Name <Room Name> -RoomNOT AUse the New-RemoteMailbox cmdlet to create a mail-enabled user in the on-premises Active Directory and also create an associated mailbox in the cloud-based service.Not designed for room mailboxes.NOT CUse the Set-MailboxCalendarConfiguration cmdlet to apply calendar settings for users using Microsoft Office Outlook Web App calendars.NOT DUse the Set-CalendarProcessing cmdlet to modify calendar-related processing configuration properties for the target mailbox, which include Calendar Attendant, resource booking assistant, and calendar configuration.B New-MailboxCreate a new Room Mailbox to schedule meetings in conference rooms, auditoriums, labs or other facilities Create new Room MailboxPowerShell command syntax:New-Mailbox -Name <Room Name> -RoomExample:New-MailBox -Name FL-ROOM1 -RoomA Look at Exchange Server 2013 Resource Mailboxeshttp://exchangeserverpro.com/exchange-server-2013-room-equipment-mailboxes/Resource mailboxes have been around for a few versions of Exchange Server, and Exchange Server 2013 brings us a few improvements in how they are managed.There are two types of resource mailboxes:Room mailboxes are for fixed locations such as meeting rooms or conference facilities Equipment mailboxes are for items that are not fixed to a location, such as laptops or vehicles Exchange 2013 puts resource mailboxes under their own section of the Exchange Administration Center. Both room and equipment mailboxes are managed in this same section.One of the immediate improvements is that you are able to set the booking policy or assign delegates during the creation of the resource mailbox, rather than as a secondary task after the mailbox is created.After the mailbox has been created there are a few additional properties you can customize. The booking options can be further tuned with regards to recurring meetings, booking horizon, and custom replies.You can also easily configure a MailTip for the resource mailbox.The text that you place in the MailTip will appear automatically when people add the room or resource mailbox to a meeting request in Outlook. Although in my opinion the MailTip needs some color to draw the person’s attention to it.Finally, an interesting default setting is the disabling of email address policies. This does make sense as most resource mailboxes are for internal use only, so having email address policies assigning multiple SMTP addresses to resource mailboxes is usually not necessary.Overall it appears that room and resource mailboxes are a feature that has matured over the previous versions of Exchange Server and now receive just a few minor improvements to make them simpler to manage.

QUESTION 96Drag and Drop QuestionYou have an Exchange Server 2013 organization that contains five servers. Several employees plan to use Microsoft Outlook to collaborate on some projects. You need to configure access to Outlook to meet the following requirements:– Several employees must be able to open only the Inbox of a user named Userl. – Several employees must be able to copy email messages from any folder in the mailbox of a user named User2.– Several employees must be able to create only contacts in the mailbox of a user named User3.Which cmdlets should you use? To answer, drag the appropriate cmdlet to the correct requirement in the answer area. Each cmdlet may be used once, more than once, or not at all. Additionally, you may need to drag the split bar between panes or scroll to view content.Answer: Explanation:Add-MailboxFolderPermissionUse the Add-MailboxFolderPermission cmdlet to manage folder-level permissions for all folders within a user’s mailbox.EXAMPLE 1This example assigns permissions for Ed to access Ayla’s Marketing mailbox folder and applies the Owner role to his access of that folder.Add-MailboxFolderPermission -Identity [email protected]:\Marketing -User [email protected] ?AccessRights OwnerAdd-MailboxPermissionUse the Add-MailboxPermission cmdlet to add permissions to a mailbox.EXAMPLE 1This example grants Kevin Kelly full access to Terry Adams’s mailbox.Note:The Identity parameter requires the full name of the user to be enclosed in quotation marks (“). Add-MailboxPermission -Identity “Terry Adams” -User KevinKelly -AccessRights FullAccess ?InheritanceTypeAllSet-MailboxUse the Set-Mailbox cmdlet to modify the settings of an existing mailbox. You can use this cmdlet for one mailbox at a time. To perform bulk management, you can pipeline the output of various Get- cmdlets (for example, the Get-Mailbox or Get-User cmdlets) and configure several mailboxes in a single-line command.You can also use the Set-Mailbox cmdlet in scripts.EXAMPLE 1This example delivers John Woods’s email messages to John’s mailbox and also forwards them to Manuel Oliveira’s ([email protected]) mailbox.Set-Mailbox -Identity John -DeliverToMailboxAndForward $true -ForwardingSMTPAddress [email protected]STEPS1. Use the Add-MailboxFolderPermission cmdlet to manage folder-level permissions for all folders within a user’s mailbox.2. Use the Add-MailboxPermission cmdlet to add permissions to a mailbox.3. Use the Add-MailboxFolderPermission cmdlet to manage folder-level permissions for all folders within a user’s mailbox.

QUESTION 97Hotspot QuestionYou are planning to implement several servers on virtual machines. The servers have Exchange Server 2013 installed.The planned implementation must meet the following requirements:– Minimize the amount of overhead required for the virtualization solution. – Minimize the risk of data corruption for the Exchange Server databases. You need to recommend a storage solution for the Exchange databases and a backup and recovery solution for the planned servers. Which solutions should you recommend? To answer, select the appropriate solutions in the answer area.Answer:

QUESTION 98Your network contains an Active Directory forest. The forest contains a single domain named contoso.com. You have an Exchange Server 2013 organization named Contoso. You plan to create an additional SMTP domain named sales.contoso.com. You will use sales.contoso.com as the primary SMTP address for the users in the sales department. You create a new email address policy and apply the policy to the sales users. New sales users report that when they attempt to access their email from the Internet for the first time by using Microsoft Outlook 2010, they fail to connect. The sales users connect to their mailbox internally successfully by using Outlook 2010. All other users can connect to their mailbox from the Internet and internally. You need to ensure that the new sales users can connect to the Exchange Server 2013 organization by using Outlook Anywhere from the Internet. Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

A. Modify each existing Service Connection Point (5CP) object in Active Directory to point to auto discover.sales.contoso.com.B. From DNS Manager, create a host (A) record for autodiscover.sales.contoso.com.C. On the Client Access servers, deploy a new certificate that includes the autodiscover.sales.contoso.com name.D. Create a new Autodiscover virtual directory on the Client Access servers and configure ExternalURL to use autodiscover.sales.contoso.com.E. Create a new Service Connection Point (SCP) object in Active Directory that points to auto discover.sales.contoso.com.

Answer: BCExplanation:– Externally connected clients are different, because they can’t lookup the SCP in Active Directory from outside of the network. These clients might be roaming laptop users with Outlook, or they might be ActiveSync capable smartphones such as iPhones. In either case they will attempt to connect to Autodiscover by performing a DNS lookup for “autodiscover.smtpdomainname”.– You need the “autodiscover.smtpdomainname” name in the Exchange 2013 SSL certificate. (C)– You will only need an autodiscover name for each SMTP domain that a user is likely to enter as their email address. (B)

QUESTION 99You have an Exchange Server 2013 organization named Contoso. The organization contains a server named Server1 that has Exchange Server 2013 installed. Server1 has the Mailbox server role and the Client Access server role installed. Server1 has a Send connector for a partner company. The Send connector is configured for Domain Security with a domain named adatum.com. The only certificate installed on Server1 expires. You discover that all email messages sent to adatum.com remain in the queue on Server1. On Server1, you install a new certificate from a trusted third-party. You need to ensure that the email messages are delivered to adatum.com. What should you do?

A. Assign the new certificate to the IIS service.B. Send the new certificate to the administrator at adatum.com.C. Assign the new certificate to the SMTP service.D. Create a new send connector that contains an address space to adatum.com.

Answer: CExplanation:– The Enable-ExchangeCertificate cmdlet enables certificates when it updates the metadata that is stored with the certificate. To enable an existing certificate to work with different services, run the Enable-ExchangeCertificate command and specify the services that you want to enable. You can rerun this cmdlet if you want to add new services that use the certificate. When you enable a certificate for the Simple Mail Transfer Protocol (SMTP) service and the certificate contains a FQDN that matches the FQDN of the local computer, the certificate may be published to the Active Directory directory service.

QUESTION 100Your network contains an Active Directory forest named contoso.com. The forest contains an enterprise root certification authority (CA) named CA1. The network contains a server named EX1 that has Exchange Server 2013 installed. A partner company named A . Datum Corporation has an Active Directory domain named adatum.com. The domain contains a server named EX5 that has Exchange Server 2010 Service Pack 2 (SP2) installed. EX5 has a Receive connector that is configured for mutual TLS. Users in contoso.com plan to send email messages that contain sensitive data to users in adatum.com. You need to ensure that all of the email messages sent from contoso.com to adatum.com are encrypted by using TLS. The solution must ensure that EX1 and EX5 validate server certificates. Which three actions should you perform? (Each correct answer presents part of the solution. Choose three.)

A. Run the set-transportconfig -tlssenddomainsecurelist contoso.com command.B. Install a certificate, and then assign the certificate to the IIS service. Send the root certificate for contoso.com to the administrators in adatum.com.C. Run the New-SendConnector cmdlet and specify the domainsecureenabled parameter.D. Run the New-SendConnector cmdlet and specify the tlsdomainparameter.E. Run the set-transportconfig -tlssenddomainsecurelist adatum.com command.F. Install a certificate, and then assign the certificate to the SMTP service. Send the root certificate for contoso.com to the administrators in adatum.com.

Answer: ADFExplanation:A: Use the Set-TransportConfig cmdlet to modify the transport configuration settings for the whole Exchange organization.TheTLSSendDomainSecureListparameter specifies the domains from which you want to send domain secured email by using mutual TLS authentication. In this scenario we send from EX1 in the contoso.com domain.D: Need to create a new send connector.The TlsDomain parameter specifies the domain name that the Send connector uses to verify the FQDN of the target certificate when establishing a TLS secured connection.F: A new certificate is needed for the SMTP service.